54afcb91af3d04b73b9e8f1db28ea507271e3a6043a744dfd75c3c292aeee451

Sharing

Copy URL

Twitter E-mail

General

Target

54afcb91af3d04b73b9e8f1db28ea507271e3a6043a744dfd75c3c292aeee451
Size

234KB
MD5

0cc0773e8571e2d83f42f2ed0564c944
SHA1

5098095532be0347ac07705797dd99dabf0e2b94
SHA256

54afcb91af3d04b73b9e8f1db28ea507271e3a6043a744dfd75c3c292aeee451
SHA512

5990dc1a598849b9acfee31e298124c10cbb4e8cfeaa7b9be04ec9cf1bf948d301275dae46acb280e0630f5128d379ac7aa0c0852521215cacdec5d3f706ce1e
SSDEEP

3072:5ROtjvkiRfI0jZrgv7pSMqh9rjg461dsZk1xTTjBdCJtUogpgn/NitkHQ:6jkiRRWpSMqjg1TXCJVn/NU

Score

N/A

Malware Config

Signatures

Files

54afcb91af3d04b73b9e8f1db28ea507271e3a6043a744dfd75c3c292aeee451
.exe windows x86

609c72ec878b3380a98dc98cc60c7a39

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
LocalAlloc
LocalFree
InitializeCriticalSection
TlsAlloc
DeleteCriticalSection
GlobalFree
GlobalUnlock
GlobalHandle
LeaveCriticalSection
GlobalLock
GlobalReAlloc
GlobalAlloc
EnterCriticalSection
TlsSetValue
LocalReAlloc
TlsGetValue
GetVersion
FileTimeToSystemTime
FileTimeToLocalFileTime
lstrcmpA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
InterlockedDecrement
FreeLibrary
GetProcessVersion
GlobalFlags
GetCPInfo
GetOEMCP
RtlUnwind
RaiseException
HeapReAlloc
GetStartupInfoA
GetTimeZoneInformation
GetACP
HeapSize
TerminateProcess
VirtualFree
VirtualAlloc
IsBadWritePtr
GetEnvironmentVariableA
HeapDestroy
HeapCreate
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
InterlockedExchange
InterlockedIncrement
GetFileTime
GetFileSize
GetFullPathNameA
lstrcpynA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
GetCurrentProcess
DuplicateHandle
WriteFile
HeapAlloc
HeapFree
GetCurrentThreadId
CreateMutexA
CreateDirectoryA
GetCommandLineA
ReleaseMutex
SetUnhandledExceptionFilter
GetVersionExA
GetWindowsDirectoryA
WinExec
GetModuleHandleA
GetModuleFileNameA
MultiByteToWideChar
GetFileAttributesA
CreateFileA
SetFilePointer
ReadFile
lstrcatA
GetLastError
DeleteFileA
SetLastError
lstrlenA
lstrcpyA
Sleep
ExitProcess
LoadLibraryA
GetProcAddress
CreateToolhelp32Snapshot
lstrcmpiA
CloseHandle

shell32

SHGetFolderPathA

comctl32

ord17

gdi32

ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
DeleteObject
GetDeviceCaps
GetObjectA
SetBkColor
SetTextColor
GetClipBox
CreateBitmap

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

comdlg32

GetFileTitleA

Sections

.text
Size: 230KB - Virtual size: 229KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

609c72ec878b3380a98dc98cc60c7a39

Headers

File Characteristics

Imports

kernel32

shell32

comctl32

gdi32

winspool.drv

comdlg32

Sections

.text Size: 230KB - Virtual size: 229KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 230KB - Virtual size: 229KB

.rsrc
Size: 3KB - Virtual size: 3KB